Skip to content

Microsoft Office 365 ProPlus Security Technical Implementation Guide

Rules, Groups, and Values defined within the XCCDF Benchmark

  • SRG-APP-000207

    <GroupDescription></GroupDescription>
    Group
  • Open/save of Web pages and Excel 2003 XML spreadsheets must be blocked.

    &lt;VulnDiscussion&gt;This policy setting allows you to determine whether users can open, view, edit, or save Excel files with the format specified...
    Rule Medium Severity
  • SRG-APP-000207

    <GroupDescription></GroupDescription>
    Group
  • Extraction options must be blocked when opening corrupt Excel workbooks.

    &lt;VulnDiscussion&gt;This policy setting controls whether Excel presents users with a list of data extraction options before beginning an Open and...
    Rule Medium Severity
  • SRG-APP-000210

    <GroupDescription></GroupDescription>
    Group
  • Updating of links in Excel must be prompted and not automatic.

    &lt;VulnDiscussion&gt;This policy setting controls whether Excel prompts users to update automatic links, or whether the updates occur in the backg...
    Rule Medium Severity
  • SRG-APP-000488

    <GroupDescription></GroupDescription>
    Group
  • Loading of pictures from Web pages not created in Excel must be disabled.

    &lt;VulnDiscussion&gt;This policy setting controls whether Excel loads graphics when opening Web pages that were not created in Excel. It configure...
    Rule Medium Severity
  • SRG-APP-000516

    <GroupDescription></GroupDescription>
    Group
  • AutoRepublish in Excel must be disabled.

    &lt;VulnDiscussion&gt;This policy setting allows administrators to disable the AutoRepublish feature in Excel. If users choose to publish Excel dat...
    Rule Medium Severity

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules